Home Alerte

Alerte

• Hacker Uses XSS and Google Street View Data to Determine Physical Location
  
  
  
• CAnCAn te iubim, CA CA tine nu gasim. Superfete.cancan.ro e de rahat
  Toata comunitatea RST iubeste la nebunie CAnCAn.ro datorita faptului ca fura tot ce prind pe internet si nici macar nu dau sursele. Dupa ce au fost apostrofati de doua ori in aceeasi zi (1, 2), tot nu au avut bunul simt sa isi modifice stilul de a fura/lucra asa ca, cel putin in cazul lor, [...]
  
  
• Deface (?!?) pe Cotidianul.ro
  Odata cu schimbarea anotimpului apar si chestiile interesante in domeniul hacking. Cum frigul ne tine mai mult in casa, iata ca vin si demonstratiile de forta ce de multe ori sunt destul de amuzante. Astazi cotidianul.ro a fost spart datorita unei vulnerabilitati Sql Injection ce le-a permis atacatorilor sa modifice continutul unei pagini in ceea ce [...]
  
  
• Virusi in clipuri video [how to]
  Articol preluat cuvant cu cuvant de la adresa http://rstcenter.com/forum/24854-video-virus.rst Autor: B7ackAnge7z Prefață: Acest articol trebuia să apară pe RST la începutul lunii aprilie, dar cu părere de rău, tot nu găseam timp să-l scriu, iar la un moment dat am crezut ca nici nu mai are rost să o fac. Însă astăzi, observând că eroarea găsită de mine [...]
  
  
• Cyber-Bullying – palma parinteasca a noului mileniu
  Jessi Slaughter este o copila de clasa a 7-a cu prea mult timp liber si cu acces la internet, ce a reusit involuntar sa devina o asa zisa victima a internetului. Faptul ca parintii nu si-au educat si supravegheat plodul nu e un subiect demn de luat in discutie de presa, in media din intreaga [...]
  
  
• Christopher “moot” Poole: The case for anonymity online
  
  
  
• Wtf Avira?
  Think evil, be evil. Simply Google. Actually a stupid mistake coming from Avira antivirus product. You know guys,  maybe you should block every html code next time. It would be easier than banning 0px iframes. I’m moving back to nod32 antivirus.
  
  
• Some old story about tagged.com
  In 2009 I started to invest some time in adult affiliate programs and my needs for traffic increased day after day. After few days of researching I found some traffic sources to test my ideas, but one of the most important websites used last year by me and my friends was Tagged.com. When everything started,  javascript [...]
  
  
• Pwning cam girls for fun
  Sometimes making fun of people using xss tricks can be very entertaining. Today I will talk about xlovecam.com, a belgian adult videochat website with huge amount of traffic from France. Our purpose is to make models believe that their accounts are suspended. For them this means a lot of money and time wasted. Some real examples: http://img339.imageshack.us/img339/5881/buahahahaq.png [...]
  
  
• Tabloshit
  http://www.libertatea.ro/stire/hacker-de-temut-dar-are-doar-doua-clase-289571.html O invit pe don’soara Cristina Scortariu sa vina si la mine in cartier ca sa vada persoane de o anumita etnie, ce nu au fost la scoala in viata lor, cum trimit servere de ProRat pasaricilor cu care vorbesc pe messenger. Accept chiar sa fiu platit pentru ca am pus-o in contact cu acesti diavoli [...]
  
  

Trend Micro - Newest Malware Advisories

Latest malware advisory from Trend Micro

• TROJ_TDSS.KAX
  Malware: TROJ_TDSS.KAX
  
  
• TROJ_TDSS.FAT
  Malware: TROJ_TDSS.FAT
  
  
• TROJ_BANLOAD.VCA
  Malware: TROJ_BANLOAD.VCA
  
  
• ADWARE_ZANGO
  Grayware: ADWARE_ZANGO
  
  
• TROJ_FAKEAV.FNZ
  Malware: TROJ_FAKEAV.FNZ
  
  
• TROJ_HILOTI.FNZ
  Malware: TROJ_HILOTI.FNZ
  
  
• HTML_REDIR.BA
  Malware: HTML_REDIR.BA
  
  
• JS_REDIR.BB
  Malware: JS_REDIR.BB
  
  
• TROJ_DLDER.AU
  Malware: TROJ_DLDER.AU
  
  
• ANDROIDOS_DROISN...
  Unknown: ANDROIDOS_DROISNAKE.A
  
  

BitDefender - Real-time Virus Reporting

BitDefender - Real-time Virus Reporting

• Exploit.CplLnk.Gen
  Exploit.CplLnk.Gen
  
  
• Generic.Brontok.E422969B
  Generic.Brontok.E422969B
  
  
• Prot%E9g%E9 par mot de passe :
  Prot%E9g%E9 par mot de passe :
  
  
• Protecci%F3n de contrase%F1a:
  Protecci%F3n de contrase%F1a:
  
  
• Cookie.Weborama
  Cookie.Weborama
  
  
• Worm.Generic.54634
  Worm.Generic.54634
  
  
• Win32.Brontok.MO
  Win32.Brontok.MO
  
  
• Win32.Brontok.AX@mm
  Win32.Brontok.AX@mm
  
  
• Joke.NoClose.JS.A
  Joke.NoClose.JS.A
  
  
• Win32.Sality.3
  Win32.Sality.3
  
  

LinuxSecurity.com - Security Advisories

The central voice for Linux and Open Source security news.

• SuSE: 2010-038: kernel
  LinuxSecurity.com: This SUSE Linux Enterprise 10 SP3 kernel update contains several bug fixes and fixes for the following security issues: CVE-2010-2240: the stack of a process could grow into other mapped areas, therefore overwriting memory instead of terminating the [More...]
  
  
• Debian: 2102-1: barnowl: unchecked return value
  LinuxSecurity.com: It has been discovered that in barnowl, a curses-based instant-messaging client, the return codes of calls to the ZPending and ZReceiveNotice functions in libzephyr were not checked, allowing attackers to cause a denial of service (crash of the application), and possibly execute [More...]
  
  
• Pardus: 2010-120: Flashplugin: Multiple
  LinuxSecurity.com: Multiple vulnerabilities have been fixed in flashplugin.
  
  
• Pardus: 2010-119: OpenSSL: Use-after-free
  LinuxSecurity.com: A vulnerability has been fixed in OpenSSL, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
  
  
• Mandriva: 2010:170: wget
  LinuxSecurity.com: A vulnerability has been found and corrected in wget: GNU Wget 1.12 and earlier uses a server-provided filename instead of the original URL to determine the destination filename of a download, which allows remote servers to create or overwrite arbitrary files [More...]
  
  

Packet Storm Security Advisories

Packet Storm Last 10 Advisories

• ie8-forcedtweet.txt
  Microsoft Internet Explorer 8 suffers from a vulnerability that allows an arbitrary web site the ability to force a victim to make tweets.
  
  
• moaub03-trendmicro.pdf
  Month Of Abysssec Undisclosed Bugs - Trend Micro Internet Security Pro 2010 suffers from an Active-X extSetOwner remote code execution vulnerability.
  
  
• moaub03-visinia.pdf
  Month Of Abysssec Undisclosed Bugs - Visinia version 1.3 suffers from cross site request forgery and local file inclusion vulnerabilities.
  
  
• googlechrome-corruption.txt
  VUPEN Vulnerability Research Team discovered a high risk vulnerability affecting Google Chrome. The vulnerability is caused by a memory corruption error when processing focus events, which could be exploited by remote attackers to potentially execute arbitrary code by tricking a user into visiting a specially crafted web page. Google Chrome versions prior to 6.0.472.53 are affected.
  
  
• dsa-2102-1.txt
  Debian Linux Security Advisory 2102-1 - It has been discovered that in barnowl, a curses-based instant-messaging client, the return codes of calls to the ZPending and ZReceiveNotice functions in libzephyr were not checked, allowing attackers to cause a denial of service (crash of the application), and possibly execute arbitrary code.